SSL Client Certificates

SSL Client Certificates are used by USAePay to digitally verify the identity of a merchant's computer. The certificate is used in conjunction with the merchant's username and password to authorize access to the merchant console. Each user wishing to access sensitive data such as card numbers must be issued a certificate. Certificates are unique to each user and may not be shared by multiple users. Please note this is NOT a server certificate provided from your host in order for your website to talk securely with other sites. This is a CLIENT certificate for your browser and it is optional.

USAePay provides a paid service of exporting the full card numbers from either the sandbox test environment or the customer database. You can get more information about it by emailing export@usaepay.com

SSL Client Certificates are currently only available for console version 1.

Requesting a SSL Certificate

SSL Certificates are available to any active merchant. Requests must be made in writing. Before making the request please read and understand the already available functionality of Quick Sale and Quick Credit. Please download the SSL Certificate Request Form and fax to the number listed on the form. SSL certificates last for 2 years.

Installation Instructions

Once an SSL certificate has been issued you will receive an email containing a link for downloading the certificate. To access the link you must log in as the same user as the certificate was issued to. Once logged in, you will be presented with a download link. Download the certificate to your desktop. The next step is to determine the type of web browser you are using. Based on the browser you are using, follow the appropriate instructions below.

*GOOGLE CHROME USERS CAN FOLLOW THE INSTRUCTIONS FOR IE*

*CURRENTLY INTERNET EXPLORER (IE) IS NOT WORKING WITH THE SSL CERTIFICATES*

Internet Explorer

The screen above includes the SSL Certificate download button, the verify button and the password you will need to install the SSL Certificate. We recommend that you select and copy the password, then paste it into the space provided when it is requested (step 5).

Open the pfx file.

This should launch the “Certificate Import Wizard.”

Click “Next.”

It will prompt for the file to be imported which should be filled in for you. Click “Next.”

You will be prompted to enter the password for the certificate. This is the password that was given to you when you downloaded the certificate. It is not your merchant console password. Once you have entered your password, click “Next.”

Click “Next” until the wizard is complete.

Your browser should now be configured correctly.

Safari

After downloading the certificate, you would go into your downloads and double click the download. Your keychain will prompt you to put in a password. You would put in the password provided for installation. When referencing the image it would be the password below the “download certificate” button. You will then see the certificate within your keychain.

After that you can skip the “verify installation” step and go straight to unlocking a card number. When unlocking a card number you would use your password for your USAePay login, not the one provided for the installation.

When unlocking it, it will prompt you to select the certificate. Once you select it you might receive another pop up message.

If you see this message, select allow, and you will see the card number and expiration date.

Firefox

The screen above includes the SSL Certificate download button, the verify button and the password you will need to install the SSL Certificate. We recommend that you select and copy the password, then paste it into the space provided when it is requested (step 8).

Save the pfx file to your desktop.

Open the Firefox preferences. To do this on Windows click on the “Tools” menu and choose the “Options…” menu item. On Mac OS, choose “Preferences…” from the “Firefox” menu.

Click on the “Advanced” icon.

Click on the “Encryption” tab.

Click on the “View Certificates” button.

Make sure you are in the “Your Certificates” tab, then click on the “Import” button.

Find the .PFX file that you saved to your desktop and click “Open.”

You will be prompted to enter the password for the certificate. This is the password that was given to you when you downloaded the certificate. It is not your merchant console password. Once you have entered your password, click “OK.”

If successful, you should get a message “Successfully restored your security certificate(s) and private key(s).” Click “OK” to continue.

Click “OK” and close the preferences window.

Opera

The screen above includes the SSL Certificate download button, the verify button and the password you will need to install the SSL Certificate. It is recommended to select and copy the password, then paste it into the space provided when it is requested.

Click “Tools” at the top of the screen, then select “Preferences”.

In the “Preferences” window, click the “Advanced” tab. Click the “Manage Certificates” button.

Click “Import.”

Change “Files of type” to “All Files”.

Locate your SSL Certificate (it should have the same name as your username) and press “Open” to continue.

You will be prompted to enter the password for the certificate. This is the password that was given to you when you downloaded the certificate. It is not your merchant console password. Once you have entered your password, click “Next.”

Once the password is verified, Opera will ask “Do you want to import the private key and these attached certificate(s)?” Click OK to continue.

When the certificate is installed correctly, you will see the name of it in your Certificates list with “cert.usaepay.com” on the right side.

Click OK to continue. You can now click on the “Verify SSL Certificate” button in the merchant console to verify that your certificate is recognized.

Once you click on the button, Opera will pop up a window stating “The server requests identification in the form of a client certificate.” If the certificate was installed correctly, you will see a confirmation message from USAePay. If the SSL certificate installation was not successful, you will be instructed to retry, or call our support team for assistance.

Lost or Stolen Certificates

The ssl certificate is your digital identification. If it gets lost or stolen, a third party could use the certficate to access the merchant console as you. To prevent this from occuring, please contact customer support immediately if you suspect that your computer has been compromised. USAePay will revoke the old certificate and issue you a new one. Further access using the old certificate will be immediately blocked. Some examples of when to request a new certificate include:

Lost or Stolen Laptop

Detection of a virus, trojan horse or other malicious software installed on your computer.

Harddrive replacement or Operating system re-installation or upgrade.

Replacement of computer

Certificate Expiration

SSL Certificates are valid for two years. After two years your certificate will no longer be accepted by the server. If your certificate has expired, contact customer support and a new certificate will be issued.

F.A.Q.

Internet Explorer - Merchants using multiple usernames in conjunction with corresponding SSL certificates might need to restart the browser in order to avoid SSL error messages when trying to unlock a card number.

When copying and pasting the passphrase please use control + c (on mac use apple + c) to paste and control + v (on mac use apple + v).